A vulnerability marked as critical has been reported in Linux Kernel up to 6.18.16/6.19.6 . The affected element is the function ncm_alloc_inst of the component f_ncm . Performing a manipulation results in null pointer dereference. This vulnerability is reported as CVE-2026-23320 . The attacker must have access to the local network to execute the attack. No exploit exists. It is suggested to upgrade the affected component.